hbdxmz / AutoBypassEncryptAndSign
auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据天然过waf的优势结合Xray等漏扫工具完成半自动的安全测试
☆43Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for AutoBypassEncryptAndSign
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆39Updated last year
- ☆22Updated 2 years ago
- god_param☆39Updated 11 months ago
- 一款BurpSuite插件,辅助手工测试☆71Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆29Updated 11 months ago
- ☆36Updated 2 years ago
- 手动收集各大SRC平台主域名,通过程序自动处理以格式化存入数据库中,便于配合其它信息搜集工具进一步测试。☆29Updated last month
- 一个既可主动,又可被动提取链接的burp插件☆43Updated 7 months ago
- 二开KillWxapkg项目,添加实时检测和开启web端服务☆37Updated 2 weeks ago
- 支持常见中间件无文件落地冰蝎内存马注入&&文件上传agent冰蝎马注入☆32Updated last year
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆77Updated last year
- nuclei模版生成插件☆104Updated 11 months ago
- 一款扫描js中敏感api的burp插件☆33Updated last year
- 组合利用泛微信息泄漏漏洞和任意用户登录漏洞,可获取全部loginId并测试登录☆56Updated last year
- 一个简单的批量反编译jar包的小脚本☆30Updated 2 years ago
- 存储桶遍历漏洞利用脚本☆61Updated last year
- oss存储桶遍历漏洞利用脚本☆44Updated last week
- ☆19Updated 8 months ago
- 基于 Json 、自定义Go脚本的多协程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆39Updated 2 weeks ago
- 一款基于fofa根据域名或fofa语法收集C段分布数量的工具☆35Updated last year
- EHole(棱洞)二开新增hunter接口、指纹、集成fscan的poc扫描功能☆91Updated 11 months ago
- Burpsuite存储桶配置不当漏洞检测插件☆21Updated this week
- 一款探测fastjson漏洞的BurpSuite插件☆60Updated 2 years ago
- 金蝶云星空 erp反序列化命令执行漏洞批量扫描POC&EXP,带命令回显☆32Updated last year
- 一款支持检测host头攻击的burp suite插件☆51Updated 9 months ago
- ☆88Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆85Updated last year
- burpsuite knife插件维护分支(2024分支请访问 knife-branch)☆5Updated 5 months ago
- 针对部署在Weblogic上的Shiro☆44Updated last year
- 分享漏洞分析,用友,致远OA,帆软,泛微☆48Updated 2 weeks ago